Log4j Vulnerability Update

James Brooks
James Brooks

Log4j is a Java library by Apache used to log debug messages within applications. It's recently been featured in news outlets around the world due to a vulnerability (known as Log4Shell) that was discovered allowing remote code execution using a specific string.

Laravel Forge

Laravel Forge does not install Log4j by default. Furthermore, Forge does not install any applications known to use Log4j.

The vast majority of servers provisioned by Forge will not be vulnerable; however, if you have manually installed applications such as ElasticSearch your server may be affected.

To check if your server is affected, you can use a script such as log4j_checker_beta.

Laravel Vapor

Laravel Vapor does not install or use Log4j in both the native or Docker runtimes. However, if you have manually installed libraries, use custom layers, or customize your Dockerfile, it is possible that Log4j has been installed due to those modifications.

You should check your environment for vulnerability and take action if necessary.

If you are looking for an SEO agency London then you can contact Larasoft.io Ltd. We offer our services with proper skills and experience.

Latest Stories

Here’s what we've been up to recently.

Request a code sample

Certified Quality. Great Prices

We use cookies to improve your experience and to help us understand how you use our site. By using this site, you accept our use of cookies. Cookie Infox